Vulnerability Details CVE-2003-1409
TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with an invalid parameter to (1) in.php or (2) out.php, which reveals the path to the TOPo directory in the error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.032
EPSS Ranking 86.6%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2003-02/0049.html
- http://secunia.com/advisories/8008
- http://www.securityfocus.com/bid/6768
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11248
- http://archives.neohapsis.com/archives/bugtraq/2003-02/0049.html
- http://secunia.com/advisories/8008
- http://www.securityfocus.com/bid/6768
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11248